vulnerability

Ubuntu: (CVE-2016-10129): libgit2 vulnerability

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:N/AC:L/Au:N/C:N/I:N/A:P)	Mar 24, 2017	Jun 26, 2025	Jul 28, 2025

Severity

CVSS

(AV:N/AC:L/Au:N/C:N/I:N/A:P)

Published

Mar 24, 2017

Added

Jun 26, 2025

Modified

Jul 28, 2025

Description

The Git Smart Protocol support in libgit2 before 0.24.6 and 0.25.x before 0.25.1 allows remote attackers to cause a denial of service (NULL pointer dereference) via an empty packet line.

Solution

no-fix-ubuntu-package

References

CVE-2016-10129
https://attackerkb.com/topics/CVE-2016-10129
URL-https://github.com/libgit2/libgit2/commit/2fdef641fd0dd2828bd948234ae86de75221a11a
URL-https://www.cve.org/CVERecord?id=CVE-2016-10129

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today